New
#11
Thank you SlartyBart :)
SSL should be disabled are you running a current version of Firefox/ Chrome or Internet explorer ?
Not sure which browser your using I missed that one :/
Internet explorer open it and go to Gear symbol and Internet options/ Advanced section/ Scroll to the bottom of the list and Unchecl all of the SSL listings I believe only SSL 3.0 will be checked,
Save the settings and restart your machine,
Cheers.
This is a fix if you have Bitdefender
Open Bitdefender
Go to "Settings" the cog at top right
Go to "Privacy Control"
select the "antiphishing" tab
Switch OFF the option SSL
I spend 2 hours this morning trying to fix this until I came across this fix buried in another site... good luck
Actually Mike, SSL 3.0 has a vulnerability and it should be disabled in favor of TLS 1.0, 1.1, or 1.2
See: Vulnerability in SSL 3.0 Could Allow Information Disclosure
Published: October 14, 2014 | Updated: December 9, 2014Microsoft is announcing that SSL 3.0 will be disabled in the default configuration of Internet Explorer and across Microsoft online services over the coming months. We recommend customers migrate clients and services to more secure security protocols, such as TLS 1.0, TLS 1.1 or TLS 1.2.
Thanks for posting the article almost 2 months old now
SSL 3.0 is still checked by default in internet options so Microsoft has not done that for anyone yet
I reinstalled my laptop just a couple of days ago and sure enough still checked so I manually unchecked of course
Cheers.
:) It's an advisory - as such it advices you to disable SSL 3.0.....
Apply Workarounds
Workarounds refer to a setting or configuration change that does not correct the underlying issue but would help block known attack vectors before a security update is available.
• Disable SSL 3.0 and enable TLS 1.0, TLS 1.1, and TLS 1.2 in Internet Explorer
.....
See Microsoft Knowledge Base Article 3009008 to use the automated Microsoft Fix it solution to disable SSL 3.0 in Internet Explorer only.
• Disable SSL 3.0 and enable TLS 1.0, TLS 1.1, and TLS 1.2 for Internet Explorer in Group Policy
You can disable support for the SSL 3.0 protocol in Internet Explorer via Group Policy by modifying the Turn Off Encryption Support Group Policy Object.
.....
revisions
•v1.0 (october 14, 2014): Advisory published.
•v1.1 (october 15, 2014): Revised advisory to include a workaround for disabling the ssl 3.0 protocol in windows.
•v2.0 (october 29, 2014): Revised advisory to announce the deprecation of ssl 3.0, to clarify the workaround instructions for disabling ssl 3.0 on windows servers and on windows clients, and to announce the availability of a microsoft fix it solution for internet explorer. For more information see knowledge base article 3009008.
•v2.1 (december 9, 2014): Microsoft is announcing the availability of ssl 3.0 fallback warnings in internet explorer 11. For more information see knowledge base article 3013210.
The next best thing is Update enables SSL 3.0 fallback warnings in Internet Explorer 11
https://support.microsoft.com/kb/3013210
MS is taking baby steps on this - Secure Socket Layer is widely used and they have to take the slow approach to avoid disrupting existing installations. It is up to the user or IT dept to implement the fix - no large corporation moves quickly enough to reconfigure their security layer overnight. It used to take me 4 to 6 months just to get IT to sign off on a network design.
:)
+edit
Now that I think of it, there has been a known vulnerability in Secure Socket Layer for a while. I recall testing different security scenarios, based on a different advisory, before I installed Win8 (7 months ago -but I think it was closer to a year ago that I was testing that).
I needed TLS 1.0 enabled to do online banking - but that's just my bank. Milaeage might vary for other members
-edit
Last edited by Slartybart; 05 Jan 2015 at 00:46.